ESET Nod32 Antivirus | Antispyware | Console d administration
Chercher :
Newsletter :  
Revues :
- Presse
- Presse FR
- Vidéos
- Twitter
- Secuobs



Abonnez vous � Nessus Professional Feed !

Sponsors :

Sommaires :
- Tendances
- Failles
- Virus
- Concours
- Reportages
- Acteurs
- Outils
- Breves
- Infrastructures
- Livres
- Tutoriels
- Interviews
- Podcasts
- Communiques
- Commentaires

Revue Presse:
- Tous
- Francophone
- Par mot clé
- Par site
- Le tagwall


Top bi-hebdo:
- Ensemble
- Articles
- Revue
- Videos
- Twitter
- Auteurs

Articles :
- Par mot clé
- Par auteur
- Par organisme
- Le tagwall


Videos :
- Toutes
- Par mot clé
- Par site
- Le tagwall


Twitter :
- Tous
- Par mot clé
- Par compte
- Le tagwall


Commentaires :
- Breves
- Virus
- Failles
- Outils
- Tutoriels
- Tendances
- Acteurs
- Reportages
- Infrastructures
- Interviews
- Concours
- Livres
- Communiques

Secumail :
- Secunia
- Full Disclosure
- Bugtraq
- DailyDave
- Vulnwatch
- Vulndiscuss
- FunSec
- Focus-IDS
- WebAppSec
- Security-Basis

RSS/XML :
- Articles
- Brèves
- Commentaires
- Revue
- Revue FR
- Videos
- Twitter
- Secunia
- Full Disclosure
- Bugtraq
- DailyDave
- Vulnwatch
- Vulndiscuss
- FunSec
- Focus-IDS
- WebAppSec
- Security-Basis

RSS SecuObs :
- sécurité
- exploit
- windows
- microsoft
- réseau
- attaque

RSS Revue :
- security
- microsoft
- windows
- hacker
- attack
- network

RSS Videos :
- vmware
- security
- virus
- biometric
- windows
- lockpicking

RSS Twitter :
- security
- linux
- botnet
- attack
- metasploit
- cisco

RSS Comments :
- Breves
- Virus
- Failles
- Outils
- Tutoriels
- Tendances
- Acteurs
- Reportages
- Infrastructures
- Interviews
- Concours
- Livres
- Communiques

RSS OPML :
- Français
- International

Abonnez vous � Nessus Professional Feed !


Revue de presse francophone :
- Vigilance - gunzip exécution de code via Huffman
- Vigilance - gunzip exécution de code via LZW
- Vigilance - Noyau Linux déni de service via NFS
- Triton de Websense la sécurité unifiée
- L'Internet des objets doit encore apprendre à interpréter
- Alvin et les Chipmunks contre les Majors
- Frédéric Renard, Arkeia Software la virtualisation, un enjeu à ne pas louper
- CERTA-2010-ACT-011 Bulletin d'actualité numéro 011 de l'année 2010 19 mars 2010
- CERTA-2010-AVI-128 Multiples vulnérabilités dans CA ARCserve Backup 19 mars 2010
- CERTA-2010-AVI-129 Vulnérabilité dans IBM DB2 Content Manager 19 mars 2010
- Jouer à prédire, c'est déjà collaborer
- Dans les sondages, indiquer sa progression ne motive pas forcément
- Nouveau firmware pour la gamme UTM de ZyXEL
- SXSW décryptage de notre futur digital
- Gilles Polart-Donat, Alixen la valeur du libre n'est pas que dans sa gratuité

Dernier articles de SecuObs :
- VASTO une extension Metasploit dédiée à l'exploitation des infrastructures virtuelles
- Hogger automatise la création des tables d'attributs Snort à partir des scans Nmap
- Edenwall obtient une subvention de la DGA
- Imposter 0.9 une plateforme de phishing ciblant les navigateurs Web
- Une faille dans l’implémentation RSA de OpenSSL
- Flint un scanner pour simuler, vérifier et nettoyer les règles de filtrage
- SET 0.4.1 - Social Engineering Toolkit - une plateforme de Social Engineering
- 100 000 dollars pour le Pwn2own 2010
- Un botnet qui rapporte gros
- Webraider offre un reverse shell contre une simple injection SQL

Revue de presse internationale :
- Researcher Who Helped Take Down Waledac Talks Crimeware
- Feds Seek 25-Year Sentence for TJX Hacker
- Madoff's Programmers Indicted
- TypeWith.me Live Text Document Collaboration
- Tim The Tool Man Taylor s dream ride
- The Current State of the Crimeware Threat
- Public Figures Protest Digital Economy Bill in Open Letter
- XSSer Automate your XSS Injections
- Validating your validation.
- Tech Thoughts Daily Net News March 20, 2010
- H Security LiMux project management, We were nave
- Washington Post Dismantling of Saudi-CIA Web site illustrates need for clearer cyberwar policies Elite U.S. military computer specialists, over the objections of the CIA, mounted a cyberattack that
- Silicon Exclusive - Next-generation super ID card on the cards for 2012
- Krebs On Security Naming and Shaming Bad ISPs
- The New York Times One on One - Christopher Poole, Founder of 4chan

Annuaire des videos
- IBM Virtual Server Security for VMware
- Avast AntiVirus 4 8 Professional with Life Time Keygen
- Comodo 4 Internet Security Review and Tests Part 1
- Root Kit Hacker Defender aufsp ren
- Remove a Virus Worm Spyware Adware Rootkit or Potentially Unwanted
- Xmas Special Crypto Encryption Protect Your Sensitive Data
- User Rights Management For Databases
- Hacking Websites You think you are secure
- Security12 Introduction Ep 01
- CAPeD Calm Audio controlled Personalized Display
- Business Logic Automatons Friend or Foe Amichai Shulman
- Shmoocon 2010 Cyborg Information Security Defense Against the Dark Arts 2 5
- Shmooncon 2010 Detection of rogue access points using clock skews does it really
- RSA Conference USA 2010 Defeating the Enemy The Road to Confidence 2
- Shmoocon 2010 Infrastructural Weaknesses in Distributed Wireless Communication Services 2 6

Revue Twitter
- experimenting with msfencode some more. How many iterations are enough damnit :-/
- @pmelson Will try to combine several encoders without destroying the payload
- RT @Carlos_Perez: installing XenDesktop, SVMM, vCenter, ESX, Hyper-V and much more in lab to research some ideas for new meterpreter scripts
- Protect Yourself from Phishing Scams. http://bit.ly/9RRtGo
- RT @bonky: metasploit's decloaking engine- shows how to get real IPs despite a user's proxies-http://decloak.net/ #proxies
- RT @SocialMediaSec: Social Media Security Podcast 11 ? Google Buzz, Geostalking, Twitter?s Phishing Filter http://bit.ly/9K4kas
- RT @SecurityBSides: RT @canoetech: Stakes Raised At CanSecWest Vancouver 2010 http://bit.ly/a7WNRW
- IT Audit Checklist: DNS Audit Checklist - http://bit.ly/8ryUny
- RT @atarii: RT @mikkohypponen Yes, that just *might* work... http://i.imgur.com/hxxYn.jpg [license plate SQL injection for speed cameras...]
- RFID Users Don't Care: The reality is that most end users don't know?or care?how an RFID tag or sensor communicate... http://bit.ly/ai8EGX

Mini-Tagwall
Revue de presse : security, microsoft, windows, hacker, attack, network, vulnerability, google, exploit, malware, internet, remote, iphone

+ de mots clés pour la revue de presse
Annuaires des videos : vmware, security, virus, biometric, windows, lockpicking, password, botnet, metasploit, tutorial, attack, crypt, linux

+ de mots clés pour les videos
Revue Twitter : security, linux, botnet, attack, metasploit, cisco, defcon, phish, exploit, google, inject, server, firewall

+ de mots clés pour la revue Twitter



Top bi-hebdo des articles de SecuObs
- Apprendre à parler Skype pour mieux le faire taire !
- Une faille dans l’implémentation RSA de OpenSSL
- Imposter 0.9 une plateforme de phishing ciblant les navigateurs Web
- VASTO une extension Metasploit dédiée à l'exploitation des infrastructures virtuelles
- Keimpx un outil d'audit pour les réseaux Microsoft Windows
- SET 0.4.1 - Social Engineering Toolkit - une plateforme de Social Engineering
- [Metasploit 2.x – Partie 1] Introduction et présentation
- Edenwall obtient une subvention de la DGA
- Comment changer un mot de passe perdu pour un compte WINDOWS
- Webraider offre un reverse shell contre une simple injection SQL

Top bi-hebdo de la revue de presse
- Sun Ray interception de données des DTU
- How to Jailbreak iPhone 3.1.3 IPSW with PwnageTool 3.1.5
- Dev Team Confirms iPhone 3.1.3 IPSW Jailbreak
- Rozlyn Papa sex tape rumours lead to malware
- FREE Kaspersky Internet Security 2010 Activation Code Valid for 6 Months
- installer backtrack 4 [tuto]
- Nouveau dictionnaire WPA Livebox
- IIS 6 may stop responding after you install Microsoft update KB 973917
- La Face cachée de Facebook
- Téléchargements Ados de mal en pis

Top bi-hebdo de l'annuaire des videos
- Comment creer un server botnet!!!!(Réseau de pc zombies)
- vSphere 4 0 update 1 VMware Update Manager and EMC PowerPath VE
- Ettercap Tutorial Man In The Middle Arp Attack
- Shmoocon 2010 Firetalks SHODAN for Penetration Testers 1 2
- install MacOSX Snow Leopard in Windows PC using Vmware Workstation as virtual machine
- Blaze botnet in action www opensc ws
- Windows XP Pro SP3 in VMWare off iSCSI Target using gPXE over 802.11n
- Running Wireshark on Mac OS X 10 6 Snow Leopard
- Avast Internet Security 5 0 396 Final Free Full Download Licensed with Serial Key
- Ch0ry Euro iPhone 3G 3GS 30 Hack WIFI key

Top bi-hebdo de la revue Twitter
- How to secure a Cisco router http://ping.fm/FkG7O
- RT @manicode: Very interesting Java ESAPI-like library coming out of Apache : http://bit.ly/9poefg
- Wirshark + SSH = Wireshark Remote Capturing - http://www.howtoforge.com/wireshark-remote-capturing (via @welias)
- Nessus Scan through a Meterpreter Session (demo) http://vimeo.com/10203481 #PaulDotCom #nessus #meterpreter
- Nux Keylogger 0.0.1 http://packetstormsecurity.org/filedesc/nuxkeylogger0.0.1.c.html
- Collection of security checks for Linux http://bit.ly/a7IH7m
- RT @FrikiFeeds: The newbie's guide to hacking the Linux kernel | TuxRadar Linux http://dlvr.it/6sQp
- Exploit for Apache mod_isapi = 2.2.14 Dangling Pointer (CVE2010-0425) vulnerability ported to Metasploit http://bit.ly/ctDQjk
- Discoverer: Automatic Protocol Reverse Engineering from Network Traces #pdf http://ow.ly/1gHd1
- New Weblog Post -- Finding Malware on your network via cached DNS entries http://bit.ly/ajpcmU

Top des articles les plus commentés
- [Metasploit 2.x – Partie 1] Introduction et présentation
- Microsoft !Exploitable un nouvel outil gratuit pour aider les développeurs à évaluer automatiquement les risques
- Webshag, un outil d'audit de serveur web
- Les navigateurs internet, des mini-systèmes d’exploitation hors de contrôle ?
- CAINE un Live[CD|USB] pour faciliter la recherche légale de preuves numériques de compromission
- [Renforcement des fonctions de sécurité du noyau Linux – Partie 1] Présentation
- Microsoft Gazelle, mini-OS virtuel basé sur MashupOS pour une navigation Web sécurisée par isolation
- Yellowsn0w un utilitaire de déblocage SIM pour le firmware 2.2 des Iphone 3G
- Nessus 4.0 placé sous le signe de la performance, de l'unification et de la personnalisation
- GreenSQL un proxy MySQL pour filtrer les requêtes SQL et contrer les injections

Les derniers commentaires publiés sur SecuObs (1-5):
- ESRT @ChrisJohnRiley @carnal0wnage - Exploiting hard filtered SQL Injections
- Malicious Code Evolution from IE Zero-Day Exploit Code
- Google Releases Skipfish Application Security Scanner
- ESRT @securityninja - Burp Suite Tutorial - Repeater and Comparer Tool
- ESRT @dinodaizovi - New metasploit blog post - analyzes the first public Perm
Détail du test :
ID
11756
Nom
CuteFTP < 5.0.2.0 Multiple Vulnerabilities
Auteurs
This script is Copyright (C) 2003-2009 Tenable Network Security, Inc.
Catégorie
Windows
Action
infos
Résumé
Determines the presence of CuteFTP.exe
Description
Synopsis : The remote FTP client is affected by various issues. Description : CuteFTP, an FTP client, is installed on the remote Windows host. The version of CuteFTP on the remote host reportedly is affected by a buffer overflow that may be exploited by an attacker to execute arbitrary commands, subject to the privileges of the current user. To exploit this issue, an attacker would need to set up a rogue FTP server and lure a user of this host to browse it using CuteFTP. In addition, the client is also affected by a flaw in which a local user can crash the client by copying a long URL into the clipboard. See also : http://archives.neohapsis.com/archives/bugtraq/2003-01/0123.html http://archives.neohapsis.com/archives/bugtraq/2003-02/0087.html http://archives.neohapsis.com/archives/bugtraq/2003-06/0136.html Solution : Upgrade to CuteFTP 5.0.2.0 or later. Risk factor : High / CVSS Base Score : 7.6 (CVSS2#AV:N/AC:H/Au:N/C:C/I:C/A:C)


Cliquer pour le detail - Liste des tests :
Ask.com Toolbar AskJeevesToolBar.SettingsPlugin.1 ActiveX (askBar.dll) ShortFormat Property Arbitrary Code Execution
CA BrightStor ARCserve Backup Multiple Remote Vulnerabilities (QO91094)
Adobe PDF Plug-In < 8.0 / 7.0.9 / 6.0.6 Multiple Vulnerabilities
Macrovision InstallShield InstallScript One-Click Install ActiveX Arbitrary Code Execution
SAP SAPgui MDrmSap ActiveX (mdrmsap.dll) Buffer Overflow
Firefox < 0.10.1 Download Directory Arbitrary File Deletion
Altiris AClient < 6.8.380 Local Vulnerabilities
WinSCP URL Protocol Handler Arbitrary File Transfer
Akamai Download Manager ActiveX Control < 2.2.4.8 Buffer Overflow
Opera < 7.50 File Download Extension Spoofing
Winamp Malformed ID3v2 Tag Handling Buffer Overflow
Adobe Reader < 9.1 / 8.1.4 / 7.1.1 Multiple Vulnerabilities
F-Secure RPM Parsing Integer Overflow (FSC-2008-3)
Flash Player Detection
Flash Player < 6.0.79.0 Multiple Unspecified Overflows
avast! CAB / SIS File Handling Buffer Overflow
Sun xVM VirtualBox Detection
activePDF Server < 3.8.6 Packet Handling Remote Overflow (credentialed check)
pcAnywhere Service Unrestricted Access
CA eTrust Antivirus WebScan ActiveX Control Vulnerabilities
QuickTime < 7.1.3 Multiple Vulnerabilities (Windows)
WinGate POST Request Buffer Overflow
Safari < 3.2 Multiple Vulnerabilities
Trend Micro ServerProtect EarthAgent RPC Request Remote Buffer Overflow
RIS Installation Check
WindowsUpdate disabled
Opera skin zip file buffer overflow vulnerability
SMB blank administrator password
WebEx Downloader ActiveX Control Command Injection
Mozilla Thunderbird < 1.5.0.14 Multiple Vulnerabilities
SMB Registry : is the remote host a PDC/BDC
Trend Micro VsapiNT.sys UPX File Parsing DoS
Adobe Reader < 7.1.0 / 8.1.2 Multiple Vulnerabilities
Mozilla Thunderbird < 2.0.0.5 Multiple Vulnerabilities
GEAR Software CD DVD Filter Driver Insecure Method Local Privilege Escalation
QuickTime < 7.0.3 Multiple Vulnerabilities (Windows)
Ipswitch IMail Server < 2006.2 Multiple Remote Overflows
CA BrightStor ARCserve Backup Discovery Service Overflow
eIQnetworks Enterprise Security Analyzer License Manager < 2.5.9 Multiple Remote Overflows
PhotoParade Player PhPInfo ActiveX (PhPCtrl.dll) FileVersionof Property Overflow
Microsoft Windows Remote Desktop Protocol Server Man in the Middle Weakness
EasyMail SMTP Object ActiveX Control Multiple Buffer Overflows
AIM Buddy Icon Overflow Vulnerability
IPINSIGHT Detection
SeaMonkey < 1.1.9
Mozilla Browser < 1.7.8 Multiple Vulnerabilities
Morovia Barcode ActiveX Control < 3.6.0 Arbitrary File Overwrite
AUREATE Software Detection
Google Chrome Detection (Windows)
SNMPc < 7.1.1 UDP Packet Handling Buffer Overflow
Ipswitch IM Server < 2.07 Multiple Function Remote DoS
Opera < 8.54 Multiple Vulnerabilities
Firefox < 2.0.0.10 Multiple Vulnerabilities
Sophos Anti-Virus detection
Trend Micro OfficeScan tmlisten.exe Malformed Data Remote DoS
Microsoft Office Detection
WinSyslog Long Syslog Message Remote DoS
SizerOne ActiveX Control AddTab Method Remote Buffer Overflow
Novell NetWare Client Print Provider (nwspool.dll) Multiple Function Overflow
CA DM Deployment Common Component Multiple DoS
iTunes < 7.4 Malformed Music File Heap Overflow (credentialed check)
CuteFTP Professional FTP Command Response Remote Overflow
Mozilla Thunderbird < 1.5.0.7 Multiple Vulnerabilities
CA BrightStor ARCserve Backup Agent for Windows Long String Overflow
Opera < 9.64 Multiple Vulnerabilities
EDraw Office Viewer ActiveX (EDraw.OfficeViewer) FtpDownloadFile Method Overflow
BitDefender Online Anti-Virus Scanner ActiveX OScan8.ocx / OScan8.ocx InitX Method Arbitrary Code Execution
KpyM Telnet Server DoS
MS04-012: Cumulative Update for Microsoft RPC/DCOM (828741) (uncredentialed check)
McAfee Anti-Virus ZIP/RAR File Scan Evasion
SMB Registry : SQL7 Patches
wodSFTP ActiveX Arbitrary File Access
Unsupported version of Microsoft Exchange Server
SeaMonkey < 1.0
IBM TXSeries for Multiplatforms CICS Listener Crafted CICSAS eci Response Timeout DoS
avast! Antivirus Server Edition Password Setting Weakness
Deterministic Network Extender dne2000.sys Local Privilege Escalation
SMB NULL session
Ipswitch IMail Server < 8.13 Multiple Remote DoS
ePolicy Orchestrator SiteManager ActiveX Control Multiple Buffer Overflows
Gracenote CDDBControl ActiveX Control Option String Overflow
SMB Registry : permissions of the Microsoft Transaction Server key
SMB Registry : Autologon Enabled
Novell SecureLogin < 6.0.106 Multiple Vulnerabilities
SonicWALL Global VPN Client < 4.0.0.830 Format String Vulnerabilities
Wireshark / Ethereal 0.99.2 to 1.0.6 Multiple Vulnerabilities
CA BrightStor ARCserve Backup for Windows Multiple Remote Buffer Overflows (QO81201)
Sun Java Runtime Environment Multiple Vulnerabilities (102729 and 102732)
Mozilla Thunderbird < 1.5.0.8 Multiple Vulnerabilities
SMB enum services over \srvsvc
FeedDemon < 2.0.0.25 Atom Feed Active Script Code Execution
Firefox < 1.5.0.3 iframe.contentWindow.focus() Overflow
Hexamail Server pop3 Service USER Command Remote Overflow (credentialed check)
Novell Client TS/Citrix Session Arbitrary User Profile Invocation
BONZI BUDDY Software Detection
SeaMonkey < 1.0.7
MS05-043: Vulnerability in Printer Spooler Service Could Allow Remote Code Execution (896423) (uncredentialed check)
Sun Java Web Start Unauthorized Access (102881)
Brilliant Digital Software Detection
Google Chrome < 3.0.195.24 dtoa Implementation Remote Overflow
QuickTime < 7.3 Multiple Vulnerabilities (Windows)
iTunes Version Detection (credentialed check)
iTunes < 8.1 Multiple Vulnerabilities (credentialed check)
Trend Micro Scan Engine Tmxpflt.sys Buffer Overflow
Sun Java Web Start PersistenceService Application Traversal Arbitrary File Overwrite (102957)
CA BrightStor ARCserve Backup Multiple Vulnerabilities (QO87569)
Mozilla Thunderbird < 1.5.0.5 Multiple Vulnerabilities
PhatBOT detection
Novell Client srvloc.sys Crafted Packet Unspecified Remote DoS
Trillian aim:// URI Handler Vulnerabilities
Nessus Windows < 3.0.6.1 ScanCtrl ActiveX Multiple Method File Manipulation
Avira AntiVir Zip Scan Evasion
Webroot SpySweeper Enterprise Detection
Trend Micro OfficeScan Client Firewall Multiple Vulnerabilities
Now SMS/MMS Gateway < 2008.02.22 Multiple Remote Overflows
DameWare Mini Remote Control Server Unspecified Local Privilege Escalation
Subversion < 1.6.4 libsvn_delta Library Binary Delta svndiff Stream Parsing Multiple Overflows
Altiris Deployment Solution Agent < 6.9.355 Local Privilege Escalation (SYM08-019)
ImageMagick Detection
Symantec Fax Viewer Control ActiveX Control AppendFax Overflow
XUpload ActiveX Control AddFolder Method Buffer Overflow
Symantec Mail Security for SMTP Message Handling Arbitrary Code Execution
Mozilla Thunderbird < 1.5 Attachment Extension Spoofing
VCATCH detection
AVG Anti-virus avg7core.sys 0x5348E004 IOCTL Local Privilege Escalation
QuickTime < 7.6.4 Multiple Vulnerabilities (Windows)
Dr.Web scanMail Function Unspecified Overflow
Mozilla Foundation Application Detection
Kaspersky Anti-Virus UPX File Decompression DoS
MS05-046: Vulnerability in the Client Service for NetWare Could Allow Remote Code Execution (899589) (uncredentialed check)
Symantec Mail Security for Microsoft Exchange Installed
SMB Registry : missing winreg
Microsoft Windows SMB Shares Access
ICQ Detection
MS06-025: Vulnerability in Routing and Remote Access Could Allow Remote Code Execution (911280) (uncredentialed check)
Firefox < 0.9.3 Null Character MIME Type Spoofing Arbitrary Code Execution
Symantec AppStream Client LaunchObj ActiveX Control Multiple Unsafe Methods (SYM09-001)
Ipswitch IMail Server/Collaboration Suite IMAP FETCH Command Overflow
LANDesk Management Suite Alert Service (aolnsrvr.exe) Remote Overflow
Windows Live OneCare Antivirus Detection
3DGreetings Player ActiveX Multiple Buffer Overflows
CommuniGate Pro Server < 5.0.7 LDAP BER Decoding Multiple Vulnerabilities
Intel PRO/Wireless Network Connection Drivers Remote Code Execution Vulnerabilities
SMB Registry : permissions of the RAS key
Aurigma Image Uploader ActiveX Control < 4.5.70 Multiple Buffer Overflows
SeaMonkey < 1.1.7
Cisco VPN Client Version Detection
Mozilla Thunderbird < 1.5.0.10 Multiple Vulnerabilities
SMB Registry : No dial in
Creative Software AutoUpdate Engine ActiveX (CTSUEng.ocx) Unspecified Overflow
iTunes < 8.0 Integer Buffer Overflow (credentialed check)
MDaemon Webconfig IMAP Malformed URL DoS
Microsoft Windows ICMP Type 9 Packet Remote DoS
Adobe Acrobat < 8.1.2 / 7.1.0 Multiple Vulnerabilities
Sophos Anti-Virus UPX and BZIP File Multiple Vulnerabilities
LANDesk Multiple Products QIP Server Service (qipsrvr.exe) Heal Request Packet Handling Overflow
eDirectory eMBox Utility Unauthorized Access
WinGate DNS Compressed Name Pointer DoS
Sun Java Runtime Environment Detection
Rhapsody vidplin.dll AVI Processing Heap Overflow Vulnerability
GO-Global for Windows _USERSA_ Remote Overflow
FileZilla FTP Client < 2.2.32 Multiple Format Strings
ZipCentral ZIP File Handling Buffer Overflow
BitDefender Client Log Creation Functionality Format String
WinGate Invalid SMTP State Format String DoS
Firefox < 1.0.4 Multiple Vulnerabilities
Avira AntiVir PDF Scan Evasion
avast! Server Edition LHA Archive Extended-header Field Processing Overflow
Safari < 4.0.3
Stunnel < 4.23 Local Privilege Escalation
VLC Media Player 0.9.x < 0.9.8a RealMedia Processing Remote Integer Overflow
ImageMagick < 6.5.2-9 magick/xwindow.c XMakeImage() Function TIFF File Handling Overflow
Winamp < 5.2 Multiple Vulnerabilities
3D-FTP Multiple Directory Traversal Vulnerabilities
Safari < 3.1.2 Multiple Vulnerabilities
WinProxy < 6.1r1c HTTP CONNECT Request Remote Overflow
SeaMonkey < 1.1.3
Cisco VPN Client Dialer Local Privilege Escalation
Opera < 7.21 HREF Escaped Character Overflow
Yahoo! Messenger YMMAPI.YMailAttach ActiveX (ymmapi.dll) Overflow
Winamp < 5.31 Multiple Buffer Overflows
Intel PRO/Wireless 2100 Network Connection Driver Local Privilege Escalation Vulnerability
Blac'oon FTP Server blac'oon.mdb Cleartext Password Disclosure
Wingate Proxy POP3 USER Overflow
SAPlpd < 6.29 Multiple Vulnerabilities (credentialed check)
Winamp < 5.55 AIFF File Handling Overflow
QuickTime < 7.5.5 Multiple Vulnerabilities (Windows)
ICUII Detection
Wireshark / Ethereal 0.99.6 to 1.0.5 Multiple Denial of Service Vulnerabilities
WS_FTP Pro Client ASCII Mode Directory Listing Handling Overflow
Opera Empty Embedded Object DoS
Dr.Web File Name Handling Overflow
Sun Java JDK/JRE 6 < Update 7 Multiple Vulnerabilities
MailEnable IMAP Server W3C Logging Overflow
Firefox < 3.5.1 Multiple Vulnerabilities
SMB Registry : XP Service Pack version
SMB OpenEventLog() over \srvsvc
Trend Micro OfficeScan HTTP Request Remote Buffer Overflow
SMB LsaQueryInformationPolicy Function NULL Session Domain SID Enumeration
Sony ImageStation AxRUploadServer.AxRUploadControl ActiveX (AxRUploadServer.dll) SetLogging Method Overflow
Trend Micro InterScan Web Security Suite < 3.1 Build 1237 Multiple Flaws
SeaMonkey < 1.0.5
Novell GroupWise Windows Client Arbitrary Email Access
Mozilla Thunderbird < 2.0.0.16 Multiple Vulnerabilities
Flash Player < 7.0.60.0 / 8.0.22.0 Multiple Vulnerabilities
VMware ACE detection (Windows)
Adobe Acrobat < 6.0.5 PDF Distillation Overflow
Winamp < 5.0.4 Filename Handler Local Buffer Overflow
CA Multiple Products InoCore.dll File Mapping Manipulation Local Overflow
Firefox < 3.0.14 Multiple Vulnerabilities
The messenger service is running
HP Instant Support HPISDataManager.dll ActiveX Control < 1.0.0.24 Vulnerabilities
QuickTime < 7.6.2 Multiple Vulnerabilities (Windows)
iMesh IMWeb.IMWebControl ActiveX (IMWeb.dll) SetHandler Method Arbitrary Code Execution
CA BrightStor ARCserve Backup ListCtrl ActiveX (ListCtrl.ocx) AddColumn() Method Overflow
Adobe Acrobat < 7.1.0 / 8.1.2 Unspecified JavaScript Method Handling Arbitrary Code Execution
Mozilla Multiple Products XPInstall Arbitrary File Overwrite
SMB Registry : Win2k Service Pack version
RealPlayer ActiveX Control Heap Memory Corruption Vulnerabilities
Microsoft Whale Client Components ActiveX (WhlMgr.dll) Multiple Method Overflows
Opera < 9.51 Multiple Vulnerabilities
Google Chrome < 0.3.154.9 Address Bar Spoofing
QuickTime for Windows Detection
SeaMonkey < 1.0.2
Flash Player Multiple Vulnerabilities (APSB06-11)
Netscape Browser Detection
BargainBuddy Software Detection
QuickTime < 6.5.2 PictureViewer Malformed JPEG Overflow (Windows)
Firefox < 1.0.6 Multiple Vulnerabilities
SMB Registry : permissions of the SNMP key
Putty Modpow integer handling
SMB fully accessible registry
Firefox < 1.5.0.2 Multiple Vulnerabilities
DriveLock DriveLock.exe HTTP Request Processing Remote Overflow
Netscape Browser < 9.0.0.6 Multiple Vulnerabilities
Foxit Reader JPEG2000 / JBIG Decoder Add-On < 2.0.2009.616 Multiple Vulnerabilities
Sun Java Runtime Environment Font Parsing Privilege Escalation (103024)
eEye Retina Wireless Scanner (Standalone) Detection
BlackBerry Enterprise Server / Unite! PDF Distiller Component Vulnerabilities (KB17118 / KB17119)
mIRC Detection
SMB LanMan Pipe Server browse listing
eScan < 9.0.718.1 MicroWorld Agent service (MWAGENT.EXE) Command Decryption Overflow
Flash Player swf Processing Multiple Unspecified Code Execution (APSB06-03)
Yahoo! Widgets YDP YDPCTL.YDPControl.1 ActiveX (YDPCTL.dll) Buffer Overflow
SMB log in as users
WinPcap NPF.SYS bpf_filter_init Arbitrary Array Indexing Local Privilege Escalation
SMB Registry : NT4 Service Pack version
PuTTY window title escape character arbitrary command execution
HP OVIS Probe Builder Service (PBOVISServer.exe) Arbitrary Remote Process Termination
Intuit QuickBooks Online Edition < 10 ActiveX Multiple Vulnerabilities
Sun xVM VirtualBox < 3.0.4 Multiple Local Denial of Service Vulnerabilities
Worldspan for Windows Gateway Res Manager Port 17990 Malformed Request DoS
Opera < 9.25 Multiple Vulnerabilities
Dropbox Software Detection
RealPlayer ActiveX (ierpplug.dll) Playlist Handling Buffer Overflow
Adobe AIR < 1.5.2 Multiple Vulnerabilities (APSB09-10)
MySpace Uploader ActiveX Control < 1.0.0.6 Action Property Buffer Overflow
RealPlayer File Handler Code Execution
Altiris Deployment Solution Aclient Process (aclient.exe) Log File Viewer Local Privilege Escalation
Norton Antivirus Detection
Firefox < 2.0.0.13 Multiple Vulnerabilities
Symantec Mail Security for Domino Arbitrary Mail Relay
MailEnable IMAP Server (meimaps.exe) Crafted RENAME Command Remote DoS
Panda Antivirus Detection
Winamp < 5.35 MP4 File Handling Buffer Overflow
Mercur Mailserver POP3 Server AUTH Command Remote Overflow
Novell iPrint Client for Windows ienipp.ocx ActiveX Multiple Variable Overflow
3ivx MPEG-4 < 5.0.2 Buffer Overflow
Safari < 4.0
SMB Registry : permissions of winlogon
SMB Share Hosting Office Files
Sun Java Web Start JNLP File Handling Overflow (102996)
Antivirus Software Check
PicoZip ZipInfo.dll Filename Handling Buffer Overflow
CommuniGate Pro Server < 5.0.8 LDAP Module Field Handling Remote DoS
Mozilla Thunderbird < 1.5.0.12 Multiple Vulnerabilities
SwiftView Viewer Plugin < 8.3.5 Buffer Overflow
F-Secure Anti-Virus for Windows system32 Directory Crafted File Detection Bypass
Akamai Download Manager ActiveX Control < 2.2.3.5 Remote Code Execution
Google Chrome < 1.0.154.48 Cross-browser Command Execution
Computer Associates Anti-Virus Engine arclib.dll < 8.1.4.0 Multiple Flaws
netOctopus Agent nantsys.sys MSR Write Local Privilege Escalation
Firefox < 3.0.7 Multiple Vulnerabilities
iTunes AAC File Parsing Integer Overflow (credentialed check)
MusicMatch < 9.0.5066 / 10.0.2048 Multiple Vulnerabilities
WS_FTP Pro Client Weak Password Encrypted
Microsoft Windows PPTP Server Malformed Control Packet Remote DoS (179107)
Altiris Notification Server Agent Local Privilege Escalation Vulnerabilities
F-Secure Archive Handling Vulnerabilities (FSC-2008-2)
RealPlayer Detection
PowerArchiver paiso.dll ISO Image Handling Buffer Overflow
QuickTime < 6.1 URL Handling Overflow (Windows)
eIQnetworks Enterprise Security Analyzer EnterpriseSecurityAnalyzer.exe LICMGR_ADDLICENSE Command Remote Overflow
Opera < 9.21 Transfer Manager Torrent File Handling Overflow
Windows Intalled Software Enumeration (credentialed check)
Office Viewer Component ActiveX (officeviewer.ocx) HttpDownloadFile Method Traversal Arbitrary File Overwrite
PGP Desktop < 9.10 Multiple Local DoS
Winamp < 5.552 Modern Skins Support Module (gen_ff.dll) MAKI File Handling Overflow
Mozilla Thunderbird < 2.0.0.17 Multiple Vulnerabilities
RealPlayer for Windows < Build 6.0.12.1483
iTunes For Windows iTunesHelper.exe Path Subversion Local Privilege Escalation (credentialed check)
Opera < 8.50 Multiple Vulnerabilities
Opera < 9.61 Multiple Vulnerabilities
MS03-039: Microsoft RPC Interface Buffer Overrun (824146) (uncredentialed check)
Oracle JInitiator beans.ocx ActiveX Buffer Overflow Vulnerabilities
Trend Micro UPX file parsing flaw detection
mIRC PRIVMSG Handling Remote Buffer Overflow
HP Systems Insight Manager < 2.5.2.0 WMI Mapper Component Multiple Flaws
SeaMonkey < 2.0
Novell Client nwspool.dll RPC Printer Functions Remote Overflow (300870)
Windows Security Center Settings
Timbuktu Pro < 8.6.7 PlughNTCommand Named Pipe Remote Stack Buffer Overflow
AVIRA Desktop for Windows ACE Archive Handling Buffer Overflow
HP HPeDiag ActiveX Control Multiple Vulnerabilities
ScriptLogic logging share
Sun Java Runtime Environment External XML Entities Restriction Bypass (231246)
Trend Micro Tmcomm.sys insecure permission
Adobe Reader < 7.0.8 Multiple Unspecified Vulnerabilities
SolidWorks Sldimdownload ActiveX Control Arbitrary Code Execution
Novell Client for Windows DPRPC library (DPRPCW32.DLL) ndps_xdr_array Function Remote Overflow
Yahoo! Music Jukebox ActiveX Controls Buffer Overflow Vulnerabilities
BlackBerry Multiple Products PDF Distiller Component PDF Processing Arbitrary Code Execution
Akamai Download Manager ActiveX Control < 2.2.3.6 Arbitrary File Download
Adobe Contribute Publishing Server Administrator Password Local Disclosure
Microsoft ActiveSync WideCharToMultiByte() Function NULL Dereference Remote DoS
Mozilla Foundation Unsupported Application Detection
Opera < 9.10 Multiple Vulnerabilities
Mozilla Firefox / Thunderbird Multiple Vulnerabilities
WinRAR LHA Filename Handling Buffer Overflow Vulnerabilities
Altiris Deployment Solution < 6.9.176 Multiple Vulnerabilities
WorldMail IMAP Server Traversal Arbitrary Mail Spool Access
LogMeIn Agent Detection
IBM Lotus Domino Web Access ActiveX Control Buffer Overflow Vulnerabilities
Adobe Acrobat < 9.1.1 / 8.1.5 / 7.1.2 getAnnots() JavaScript Method PDF Handling Memory Corruption
SeaMonkey < 1.1.14 Multiple Vulnerabilities
SeaMonkey < 1.1.16
F-Secure Multiple Products Web Console Pre-authentication Overflow
VMware Remote Arbitrary Code Execution Vulnerability
QuickTime < 7.5 Multiple Vulnerabilities (Windows)
Mozilla Thunderbird < 2.0.0.22 Multiple Vulnerabilities
Mozilla SOAPParameter Object Constructor Overlow
Firefox < 3.5.3 Multiple Vulnerabilities
ThinkVantage System Update < 3.14 SSL Certificate Issuer Spoofing
Firefox < 1.5.0.8 Multiple Vulnerabilities
Adobe Reader < 8.1.1 Crafted PDF File Arbitrary Code Execution
Firefox < 1.0 Multiple Spoofing Vulnerabilities
Flash Player < 7.0.19.0 Predictable Data Location Weakness
WinGate Passwordless Default Installation
Veritas Storage Foundation NULL NTLMSSP Authentication Bypass (SYM08-015)
Gupta SQLBase EXECUTE Command Remote Overflow
Opera web browser URI obfuscation
Kaspersky Multiple Products kl1.sys Driver Local Overflow
MailEnable IMAP EXAMINE Command Remote Overflow
FortiClient Host Security fortimon.sys Crafted Request Local Privilege Escalation
SMB use domain SID to enumerate users
DameWare NT Utilities Authentication Credentials Persistence Weakness
VMware Workstation Detection
Winamp < 5.07 IN_CDDA.dll m3u Playlist Processing Overflow
Web3000 detection
Novell GroupWise Internet Agent Detection
Autodesk IDrop ActiveX Control Heap Corruption
BitDefender Software Detection
PGP Desktop PGPserv Crafted Data Object Arbitrary Code Execution
Mozilla Thunderbird < 1.5.0.13 / 2.0.0.6 Multiple Vulnerabilities
eEye Retina Wireless Scanner .rws Handling Buffer Overflow
Windows Administrator Password Known by W32/Deloader
WinSCP URI Handler Arbitrary File Access
Netscape Browser < 9.0.0.4 Multiple Vulnerabilities
Novell GroupWise Internet Agent < 7.03 HP3 / 8.0 HP2 Multiple Buffer Overflows
Wireshark / Ethereal Detection (Windows)
Corel ActiveCGM Browser ActiveX (acqm.dll) Multiple Overflows
SMB Registry : Winlogon caches passwords
SMB use host SID to enumerate local users
Opera < 10.0 Multiple Vulnerabilities
WinProxy < 6.1a Telnet Proxy Remote DoS
Firefox < 1.0.2 Multiple Vulnerabilities
Acer LunchApp.APlunch ActiveX Arbitrary Command Execution
Zoomify Viewer ActiveX Buffer Overflow Vulnerabilities
QuickTime < 7.1.5 Multiple Vulnerabilities (Windows)
Retrospect Backup Server Authentication Module Password Hash Weakness (ESA-08-009)
SMB Registry : permissions of Schedule
McAfee E-Business Server Administration Client Length Remote DoS
TightVNC Viewer < 1.3.10 Multiple Integer Overflows
The remote host is infected by msblast.exe
InstallShield InstallFromTheWeb ActiveX Control Multiple Overflows
Tftpd32 GET/PUT Command File Name Handling Overflow
Google Chrome < 2.0.172.37 Multiple Vulnerabilities
PacketTrap pt360 TFTP Server < 1.0.3302.0 Multiple Vulnerabilities
Mozilla Thunderbird < 1.0.7 IDN URL Domain Name Overflow
Opera < 7.23 File Download Encoded Traversal Arbitrary File Deletion
MS04-007: ASN.1 Vulnerability Could Allow Code Execution (828028) (uncredentialed check)
Adobe Acrobat Detection
SonicWall Global VPN Client Detection
Real Video Server Telnet Malformed Data Remote DoS
Opera < 8.02 Multiple Vulnerabilities
IBM Tivoli Storage Manager HSM Client < 5.5.1.8 / 5.4.2.6
AntiVir File Handling Vulnerabilities
VLC Media Player 0.5.0 to 0.9.5 Stack-Based Buffer Overflows
MS05-019: Vulnerabilities in TCP/IP Could Allow Remote Code Execution (893066) (uncredentialed check)
Firefox < 2.0.0.16 / 3.0.1 Multiple Vulnerabilities
Office Viewer Component < 5.0 Multiple Vulnerabilities
Winamp Malformed Midi File Handling Buffer Overflow
Trillian MSN Overflow
Cisco VPN Client on Windows Dial-up Networking Dialog Local Privilege Escalation
Foxit Reader < 2.3 Build 2912 util.printf() Function PDF File Handling Overflow
LPViewer ActiveX Control Multiple Buffer Overflow Vulnerabilities
Yahoo! Messenger Detection
Eudora WorldMail Mail Management Server (MAILMA.exe) Remote Overflow
Google Chrome < 3.0.195.21 Multiple Vulnerabilities
Opera < 9.00 Multiple Vulnerabilities
Google Chrome < 2.0.172.33 Multiple Vulnerabilities
pcAnywhere Launch with Windows Caller Properties Local Privilege Escalation
Kaspersky Internet Security / Anti-Virus External Script Unspecified Protection Mechanism Bypass
MS06-040: Vulnerability in Server Service Could Allow Remote Code Execution (921883) (uncredentialed check)
Opera < 10.01 Multiple Vulnerabilities
HTTP RPC Endpoint Mapper (http-rpc-epmap) Detection
Adobe Reader < 7.1.0 / 8.1.2 SU1 Unspecified JavaScript Method Handling Arbitrary Code Execution
SeaMonkey < 1.1.17 Multiple Vulnerabilities
Netscape Browser Supported Version Detection
Flash Player Multiple Vulnerabilities (APSB08-11)
Cisco Security Agent for Microsoft Windows Crafted SMB Packet Remote Overflow
BitDefender CAB Scan Evasion
Trillian < 3.1.12.0 Multiple Vulnerabilities
ShockWave Player ActiveX Installer Buffer Overflow
NOD32 Antivirus ARJ Archive Handling Buffer Overflow Vulnerability
BrightStor Hierarchical Storage Manager < r11.6 Multiple Remote Vulnerabilities
First Response < 1.1.1 Multiple Vulnerabilities
MS08-065: Microsoft Windows Message Queuing Service RPC Request Handling Remote Code Execution (951071) (uncredentialed check)
HP Virtual Rooms Client < 7.0.1 ActiveX Control Dangerous Methods
Opera < 7.51 favicon.ico Address Bar Spoofing
Lyris ListManager MSDE Weak sa Password
Safari < 3.2.3
Opera < 9.24 Multiple Vulnerabilities
HP Info Center ActiveX Control Multiple Remote Vulnerabilities
Avast! Professional Edition < 4.8.1356 Multiple Vulnerabilities
Opera < 9.50 Multiple Vulnerabilities
GFI MailSecurity HTTP Management Interface Request Header Overflow
VMware VIX API Multiple Buffer Overflow Vulnerabilities
MDaemon IMAP Server Mail Folder Name Format String
BetterInternet Software Detection
FTP Voyager LIST Command File List Handling Remote Overflow
SAP GUI Moniker Creation Multiple Vulnerabilities
Windows USB Device Usage Report
Intel Common Base Agent CreateProcessA() Function Remote Command Execution
7-Zip < 4.57 Archive Handling Unspecified Issue
Lotus Notes Client < 7.0.3 / 8.0.1 Multiple Overflows
Ipswitch IMail Server IMAP LIST Command Remote Overflow DoS
Altiris Deployment Solution Server < 6.9.355 Password Disclosure (SYM08-020)
Kaspersky Anti-Virus < 6.0.2.614 Multiple Vulnerabilities
Pidgin Detection (Windows)
QuickTime < 7.2 Multiple Vulnerabilities (Windows)
Opera < 7.11 Filename Extension Handling Overflow
Mozilla Browser < 1.7.9 Multiple Vulnerabilities
Mozilla nsNNTPProtocol.cpp NNTP news:// URI Handling Overflow DoS
VLC Media Player < 1.0.1 real_get_rdt_chunk() Function Overflow
HP Software Update HPRulesEngine.ContentCollection ActiveX (RulesEngine.dll) Multiple Insecure Methods
CA Multiple Products inoweb Console Server Authentication Remote Overflow
WinZip Multiple Overflows
CA BrightStor ARCserve Backup Tape Engine Multiple Remote Overflows (QO84983)
Windows Messenger is installed
hMailServer < 4.4.2 build 279 IMAP Command Handling Remote DoS
VMware Player detection (Windows)
FileZilla FTP Server < 0.9.22 Wildcard Handling Remote DoS
MS05-017: Vulnerability in MSMQ Could Allow Code Execution (892944) (uncredentialed check)
Vulnerability in Symantec AntiVirus could allow remote code execution (SYM06-010)
Foxit Reader Detection
SeaMonkey < 1.0.6
IBM AFP Viewer Plug-in SRC Property Buffer Overflow
Plaxo Client Is Installed
ESET Anti-Virus .CAB File Scan Evasion
SMB Registry : value of SFCDisable
CA BrightStor ARCserve Backup RPC Interface (asdbapi.dll) Traversal Arbitrary Command Execution
CRYPTO-Server installvariables.properties LDAP Credential Local Disclosure
McAfee E-Business Server Authentication Packet Remote Overflow
Mozilla Browsers shell: URI Arbitrary Command Execution
Outlook Express Multiple Vulnerabilities (900930)
NOD32 3.0/ESET Smart Security < 3.0.684 Local Privilege Escalation
CA eTrust Intrusion Detection System Key Exchange Remote DoS
DameWare Mini Remote Control Authentication Credentials Persistence Weakness
Adobe Acrobat < 9.1 / 8.1.4 / 7.1.1 Multiple Vulnerabilities
Sun Java JRE Plug-in Capability Arbitrary Package Access
MDaemon POP Server Multiple Command Remote Overflow DoS
NOD32 Run-Time Decompressors Multiple Vulnerabilities
AXIS Camera Control (aka CamImage) AxisCamControl.ocx ActiveX SaveBMP Method Overflow
Lenovo Rescue and Recovery tvtumon.sys Filename Handling Local Overflow
Yahoo! Messenger YVerInfo ActiveX Buffer Overflow Vulnerabilities
AutoDesk LiveUpdate ActiveX Control ApplyPatch Method Execution
MapQuest Toolbar Detection
McAfee Common Management Agent 3.6.0 UDP Packet Handling Format String (credentialed check)
MS09-050: Microsoft Windows SMB2 _Smb2ValidateProviderCallback() Vulnerability (975497) (uncredentialed check)
Winamp < 3.0b Multiple File Handling DoS
NOD32 Antivirus Local File Creation
MailEnable IMAP / SMTP Multiple Remote Vulnerabilities
GdPicture Multiple ActiveX Control SaveAsPDF Method Arbitrary File Overwrite
Trend Micro ServerProtect AgRpcCln.dll Buffer Overflow
Google Desktop Advanced Search Internal Web Server XSS
VMware Server Detection (Windows)
Firefox < 3.5.4 Multiple Vulnerabilities
Flash Player Multiple Vulnerabilities (APSB09-10)
Firefox < 3.0.4 Multiple Vulnerabilities
TIMESINK detection
VMnc Media Codec Multiple Heap Overflows (VMSA-2009-0012)
CA BrightStor ARCserve Backup Tape Engine and Portmapper Multiple Vulnerabilities (QO86255)
JS.Scob.Trojan or Download.Ject Trojan
Opera < 7.50 JavaScript Engine Array Handling DoS
NetVault Report Manager Scheduler File Name Handling Overflow
Google Chrome < 2.0.172.43 Multiple Vulnerabilities
MS07-039: Vulnerability in Windows Active Directory Could Allow Remote Code Execution (926122) (uncredentialed check)
Opera < 7.03 Multiple Vulnerabilities
Pidgin < 2.5.6 Multiple Buffer Overflows
Mozilla / Firefox Multiple Vulnerabilities
Eserv Non Terminated Connection Saturation DoS
Prevx Pro 2005 <= 1.0.0.1 Multiple Vulnerabilities
SMB accessible registry
Novell Distributed Print Services (NDPS) Print Provider (NDPPNT.DLL) Remote Overflow
SAP GUI KWEdit ActiveX Control SaveDocumentAs() Insecure Method
Mozilla Browser < 1.7.6 Multiple Vulnerabilities
RealPlayer for Windows < Build 6.0.12.1578
SMB guest account for all users
Winamp < 5.0.8c Multiple Unspecified Vulnerabilities
Cisco Security Agent Detection
Safari Detection (Windows)
QuickTime < 7.6 Multiple Vulnerabilities (Windows)
Opera getElementsByTagName JavaScript Method DoS
VLC Media Player < 1.0.2 Multiple Remote Buffer Overflows
F-Secure ZIP/RAR Archive Handling Overflow Vulnerabilities
IBM eGatherer ActiveX RunEgatherer Function Overflow
Ipswitch IMail IMAP Service DELETE Command Remote Overflow
DCE Services Enumeration
Ffdshow < rev2347_20081123 Remote Buffer Overflow
FileZilla FTP Server MLSD Command Overflow
Flash Player Multiple Vulnerabilities (APSB07-12)
MS08-059: Microsoft Host Integration Server (HIS) SNA RPC Request Remote Overflow (956695) (uncredentialed check)
Symantec Anti Virus Corporate Edition Check
Novell Client nwfs.sys Local Privilege Escalation
Pidgin < 2.6.1 Multiple Vulnerabilities
SNMPc Management Server Login Packet Remote DoS
Trend Micro OfficeScan cgiRecvFile.exe ComputerName Parameter Buffer Overflow
MS06-008: Vulnerability in Web Client Service Could Allow Remote Code Execution (911927) (uncredentialed check)
WILDTANGENT detection
MailEnable IMAP Server Unspecified Buffer Overflow (ME-10018)
Symantec Decomposer Multiple Vulnerabilities (SYM08-006)
Kaspersky Online Scanner kavwebscan.CKAVWebScan ActiveX (kavwebscan.dll) Format String Arbitrary Code Execution
The ScriptLogic service is running
Novell iPrint Client ActiveX Control Multiple Vulnerabilities
Trillian Detection
MS05-007: Vulnerability in Windows Could Allow Information Disclosure (888302) (uncredentialed check)
The remote host is infected by a virus
Sun Java Runtime Environment GIF Image Handling Buffer Overflow (102760)
MERCUR Messaging Control Server Multiple Buffer Overflows
Command Antivirus odapi.dll ActiveX Control Multiple Overflows
CA Secure Content Manager HTTP Gateway Service FTP Vulnerabilities
JanaServer < 2.4.5 Multiple Remote DoS
Sophos Anti-Virus CAB, RAR and LZH Scanning Evasion
Flash Player Multiple Vulnerabilities (APSB09-01)
ProgramChecker sasatl.dll ActiveX Control Multiple Overflow Vulnerabilities
MS04-011: Microsoft Windows SSL Library Malformed Message Remote DoS (835732) (uncredentialed check)
SAP SAPgui SAPIrRfc ActiveX (sapirrfc.dll) Accept Function Overflow
SMB Windows9x password verification vulnerability
GAMSoft TelSrv 1.4/1.5 Username Overflow DoS
MS03-034: Flaw in NetBIOS Could Lead to Information Disclosure (824105) (uncredentialed check)
Citrix License Server Licensing Management Console Unspecified Issue
Firefox < 2.0.0.18 Multiple Vulnerabilities
Sun xVM VirtualBox < 1.6.4 Local Privilege Escalation
Google Chrome < 2.0.172.31 WebKit Multiple Vulnerabilities
Kaspersky Anti-Virus for Check Point FireWall-1 Unspecified DoS
DSSAGENT Software Detection
NOD32 File Processing Vulnerabilities
Avira AntiVir RAR/CAB/ZIP/LH Scan Evasion
COM+ Internet Services (CIS) Server Detection
CA eTrust Intrusion Detection CPImportKey Function Overflow DoS
Sun Java Runtime Environment XML Signature Command Injection (102993)
Mozilla Thunderbird < 1.5.0.4 Multiple Vulnerabilities
Firefox < 3.0.1 Multiple Vulnerabilities
ISS BlackICE/PC Protection Unprivileged User Local DoS
IBM Tivoli Storage Manager Express Backup Server service (dsmsvc.exe) Packet Handling Remote Overflow
Rhapsody SWF File Handling Buffer Overflow
VLC Media Player Detection
CA BrightStor ARCserve Backup Universal Agent Remote Overflow (QO66526)
Google Toolbar < 2.0.114.1 Multiple Vulnerabilities
Windows Reboot Required
IBM Lotus Notes / Domino Client Memory Mapped Files Privilege Escalation
eIQnetworks Enterprise Security Analyzer Syslog Server Multiple Remote Overflows
Opera web browser news url denial of service vulnerability
Safari < 4.0.2
Firefox < 3.0.11 Multiple Vulnerabilities
Winamp < 5.0.7 Multiple File Handling DoS
Firefox < 2.0.0.5 Multiple Vulnerabilities
AIM Smiley Icon Location Denial Of Service Vulnerability
Opera < 9.23 Crafted Javascript Arbitrary Code Execution
IA eMailServer IMAP4 LIST Command Format String Remote DoS
Firefox < 1.5.0.7 Multiple Vulnerabilities
Gracenote CDDBControl ActiveX Proxy Configuration Parameters Multiple Overflows
VMware Workstation < 5.5.4 Build 44386 Multiple Vulnerabilities
AOL Radio AmpX ActiveX Control Buffer Overflow Vulnerabilities
Patchlink Detection
Adobe Reader Detection
Opera remote location object cross-domain scripting vulnerability
VERITAS Backup Exec Agent for Windows CONNECT_CLIENT_AUTH Remote Overflow
AxWebRemoveCtrl ActiveX Control Arbitrary Code Execution
MailEnable Webmail Malformed Quoted-printable Email DoS (CVE-2006-0504)
Symantec Backup Exec for Windows Servers Denial of Service Vulnerabilities
Firefox < 3.5.2 Multiple Vulnerabilities
RealPlayer multiple remote overflows
Sun Java JDK/JRE 5 < Update 16 Multiple Vulnerabilities
Adobe Acrobat < 9.1.3 Flash Handling Unspecified Arbitrary Code Execution
eEye Retina Network Security Scanner Detection
Facebook Photo Uploader ActiveX Control < 4.5.57.1 Multiple Buffer Overflows
MailEnable IMAP Server Multiple Remote Buffer Overflows
MS07-040: Vulnerabilities in .NET Framework Could Allow Remote Code Execution (931212) (uncredentialed check)
Yahoo! Messenger AudioConf ActiveX Control (yacscom.dll) Multiple Property Overflow
Firefox < 3.0.5 Multiple Vulnerabilities
MDaemon IMAP Server Multiple Command Local DoS
Altiris Deployment Solution Agent < 6.9.176 Multiple Local Vulnerabilities
FileZilla FTP Client Unspecified Overflow
SeaMonkey < 1.1.4
Firefox < 3.0.13 Multiple Vulnerabilities
VMware Products Privilege Escalation Vulnerability (VMSA-2009-0015)
Anzio Web Print Object (WePO) ActiveX mainurl Variable Buffer Overflow
CA Vet Scan Engine < 11.9.1 Library Remote Heap Overflow
Opera < 9.02 Multiple Vulnerabilities
Mozilla Browser < 1.7.7 Multiple Vulnerabilities
Firefox < 1.5.0.9 / 2.0.0.1 Multiple Vulnerabilities
UPnP TCP Helper Detection
Firefox < 2.0.0.8 Multiple Vulnerabilities
SeaMonkey < 1.1.15 Multiple Vulnerabilities
NOD32 Antivirus System Detection
CA BrightStor ARCserve Backup for Laptops & Desktops Server Multiple Vulnerabilities (QO83833)
Notepad++ Ruby Source File Handling Overflow
Adobe Download Manager < 2.2 AOM File Handling Section Name Overflow
Ipswitch IMail Client Multipart MIME E-mail Message Handling Overflow
SeaMonkey < 1.1.18 Multiple Vulnerabilities
Rhapsody Detection
Spybot Search & Destroy Detection
TestDirector (TD) for Mercury Quality Center SPIDERLib.Loader ActiveX Control (Spider90.ocx) ProgColor Property Overflow
WEBHANCER detection
Kaspersky Anti-Virus PE File Handling DoS
Altiris Altiris.AeXNSPkgDL.1 ActiveX Control DownloadAndInstall() Method Arbitrary Code Execution
Gator/GAIN Spyware Installed
OpenOffice < 3.1.1 Multiple Buffer Overflows
Sun Java Runtime Environment DoS
QuickTime < 7.1.6 quicktime.util.QTHandleRef toQTPointer Method Arbitrary Code Execution (Windows)
F-Secure Products ZIP/RAR File Scan Evasion (FSC-2009-1)
SeaMonkey < 1.0.8
Winamp in_midi.dll MIDI File Processing Overflow
Compression Plus CP5DLL32.DLL ZOO Archive Header Processing Overflow
First4Internet XCP Uninstallation CodeSupport.ocx ActiveX Control Arbitrary Code Execution
Winamp < 5.0.5 Skin File (.WSZ) Local Zone Arbitrary Code Execution
SMB Registry : Windows 2003 Server SP2
Panda Antivirus EXE File Parsing Overflow
Panda AdminSecure Communications Agent < 4.2 Packet Handling Remote Heap Overflow
MailEnable IMAP Server Multiple Buffer Overflow Vulnerabilities (ME-10025)
Drag And Zip File Name Handling Overflow
Trend Micro OfficeScan Multiple CGI Module Vulnerabilities
OpenOffice < 2.4 Multiple Vulnerabilities
Windows Terminal Services Enabled
Websense Email Security < 7.1 Hotfix 4
ISS BlackICE Multiple Remote Vulnerabilities
Mozilla Thunderbird < 2.0.0.21 Multiple Vulnerabilities
MailEnable IMAP STATUS Command Remote Overflow
SMB Registry : permissions of HKLM
RealPlayer for Windows < Build 6.0.12.1662
RealPlayer / RealOne Player for Windows Multiple Vulnerabilities
I-Nav VUpdater.Install ActiveX Buffer Overflow
CA iTechnology iGateway Service Content-Length Buffer Overflow
Novell iPrint Control ActiveX (ienipp.ocx) ExecuteRequest() Method Overflow
Timbuktu Pro < 8.6.5 Multiple Vulnerabilities
MDaemon < 9.0.6 POP3 Server USER / APOP Command Remote Overflow
Shockwave Player APSB09-08
Altiris Deployment Solution Server DB Manager Unauthenticated Command Execution
GO-Global for Windows _USERSA_ Remote Overflow (credentialed check)
Firefox < 1.5.0.12 / 2.0.0.4 Multiple Vulnerabilities
SeaMonkey < 1.0.1
SiteKiosk < 6.5.150 Multiple Vulnerabilities
Akamai Download Manager ActiveX Control < 2.2.1.0 Multiple Vulnerabilities
EasyMail Objects IMAP4 Component Connect Method Remote Overflow
MDaemon Server DomainPOP Malformed Message DoS
NetSupport Manager Client Spoofing Remote Authentication Bypass
Firefox < 3.0.15 Multiple Vulnerabilities
SeaMonkey < 1.1.13 Multiple Vulnerabilities
Wyse Device Manager Buffer Overflow
Trillian < 3.1.10.0 Multiple Vulnerabilities
Symantec Mail Security for SMTP File Parsing Vulnerabilities
AOL Instant Messenger (AIM) Software Detection
MS04-035: WINS Code Execution (870763) (uncredentialed check)
SeaMonkey < 1.1.5
Quake 3 Arena Malformed Connection Packet DoS
Sun JRE Java Plug-in JavaScript Security Restriction Bypass (2)
MailEnable IMAP Server EXAMINE Command Remote DoS
MailEnable Detection
ATI Catalyst Dynamic Driver (atidsmxx.sys) Local Privilege Escalation
McAfee Anti-Virus TAR/PDF File Scan Evasion
eIQnetworks Enterprise Security Analyzer Monitoring.exe Multiple Command Overflow
Opera < 9.22 Multiple Vulnerabilities
MS05-027: Vulnerability in SMB Could Allow Remote Code Execution (896422) (uncredentialed check)
SecureCRT SSH1 protocol version string overflow
Firefox < 3.0.2 Multiple Vulnerabilities
CA BrightStor ARCserve Backup Multiple Vulnerabilities (QO84983)
Visnetic AntiVirus Plug-in for MailServer Local Privilege Escalation
XnView RGBE File Handling Buffer Overflow
MailEnable POP3 Server Authentication Vulnerabilities
RoboHelp Server Help Errors Vulnerabilities (APSB08-16)
WebEx Meeting Manager WebexUCFObject ActiveX Control Buffer Overflow
SMB Registry : permissions of keys that can lead to admin
BlackBerry Enterprise Server Attachment Service Unspecified Vulnerabilities (KB18327)
RealVNC VNC Viewer < 4.1.3/4.4.3 Arbitrary Command Execution
MS04-036: Microsoft NNTP Component Remote Overflow (883935) (uncredentialed check)
HP Instant Support Driver Check HPSDDX Class (SDD) ActiveX (sdd.dll) queryHub Function Overflow
Wireshark / Ethereal 0.9.2 to 1.2.0 Multiple Vulnerabilities
SMB get host SID
MS07-063: Vulnerability in SMBv2 Could Allow Remote Code Execution (942624) (uncredentialed check)
Novell iPrint Client nipplib.dll ActiveX (ienipp.ocx) IppCreateServerRef Function Overflow
Mozilla Browser < 1.7.12 Multiple Vulnerabilities
Trillian < 3.1.5.1 Multiple Vulnerabilities
Microsoft Windows NetBIOS NULL Source Name Remote DoS
SeaMonkey < 1.1.11
DameWare Mini Remote Control Pre-Authentication Username Remote Overflow
Sun Java Runtime Environment Multiple Vulnerabilities (263408 et al)
Firefox < 2.0.0.20 Cross Domain Data Theft
Sun Java Runtime Environment jpiexp32.dll DoS
Wireshark / Ethereal < 1.0.3 Multiple Vulnerabilities
Mozilla Thunderbird < 1.5.0.9 Multiple Vulnerabilities
Vulnerability in SAVCE could allow Local Privilege Escalation (SYM07-017)
Mozilla Thunderbird < 1.0.2 Browser GIF Processing Overflow
Opera < 7.22 Multiple Vulnerabilities
QuickTime RTSP URL Handler Buffer Overflow (Windows)
Opera < 9.20 Multiple Vulnerabilities
Firefox < 1.5.0.10 / 2.0.0.2 Multiple Vulnerabilities
HP Virtual Rooms WebHPVCInstall.HPVirtualRooms14 ActiveX Control Buffer Overflow Vulnerabilities
Mozilla Thunderbird < 2.0.0.14 Multiple Vulnerabilities
Realtek HD Audio Codec Drivers Multiple Local Privilege Escalation Vulnerabilities
Firefox < 2.0.0.14 Javascript Garbage Collector DoS
iParty Client Extended Character Handling Remote Overflow DoS
Hexamail Server pop3 Service USER Command Remote Overflow
Opera < 9.52 Multiple Vulnerabilities
WebWasher Remote ARJ Decoder Malformed Archive Handling DoS
Bonjour < 1.0.5 Multiple Vulnerabilities (APPLE-SA-2009-09-09)
CA BrightStor ARCserve Backup Agent Credential Disclosure
Novell GroupWise Authentication Credentials MiTM Disclosure
Sun Java Runtime Environment Multiple Vulnerabilities (233321-233327)
Installed Windows Hotfixes
Firefox < 1.0.7 Multiple Vulnerabilities
QuickTime < 7.3.1 Multiple Vulnerabilities (Windows)
Sun Java Media Framework (JMF) Code Execution Vulnerability
VLC Media Player < 0.8.6f Multiple Vulnerabilities
Unsupported Windows NT 4.0 Installation
Shockwave Player APSB09-11
Mozilla Thunderbird < 2.0.0.18 Multiple Vulnerabilities
Cygwin < 1.5.24 cygwin1.dll Crafted Filename Handling Overflow
Adobe Acrobat < 8.1.3 Multiple Vulnerabilities
WinGate IMAP Server Directory Traversal Vulnerabilities
SMB registry can not be accessed by the scanner
FLEXnet Connect Update Service Agent ActiveX (isusweb.dll) Overflow
Flash Player Multiple Vulnerabilities (APSB08-18 / APSB08-20 / APSB08-22)
F-PROT Antivirus Engine < 4.4.4 Multiple File Handling DoS Vulnerabilities
Opera < 9.62 Multiple Vulnerabilities
SeaMonkey < 1.0.3
SonicWall NetExtender NELaunchCtrl ActiveX Control Buffer Overflow Vulnerabilities
FlexCell Grid FlexCell.Grid ActiveX Control Multiple Method Arbitrary File Overwrite
Microsoft Internet Explorer Version Detection
Symantec Mail Security For SMTP KeyView Excel SST Parsing Integer Overflow
SMB share files enumerated
QuickTime < 7.1.6 Security Update (Windows)
SMB Service Enumeration
Opera < 7.50 onUnload Address Bar Spoofing
Panda Security cpoint.sys Kernel Memory Corruption
Sun Java Runtime Environment Image Parsing Vulnerabilities (102934)
activePDF Server < 3.8.6 Packet Handling Remote Overflow
eZ/eZphotoshare Connection Saturation Remote DoS
WinZip 11.x gdiplus.dll Unspecified Vulnerability
Novell Client nicm.sys Local Privilege Escalation
Firefox < 2.0.0.6 Multiple Vulnerabilities
Firefox < 1.5.0.1 Multiple Vulnerabilities
OpenOffice < 2.2 Multiple Vulnerabilities
SMB Last Logged On User
Adobe Reader < 8.1.3 / 9.0 Multiple Vulnerabilities
Mozilla Multiple Browsers CA Certificate SSL Page DoS
LOP.COM Detection
Google Secure Access VPN Client Installed
McAfee Antivirus Detection
Trillian Multiple HTTP Responses Buffer Overflow Vulnerabilities
WinZip FileView ActiveX Control Vulnerabilities
Mozilla Thunderbird < 2.0.0.9 Multiple Vulnerabilities
SaveNOW detection
Google Desktop Detection
R-Viewer < 1.6.3768 Multiple Vulnerabilities
Microsoft Windows NT WINS Service Malformed Data DoS
Ipswitch IMail Server < 2006.21 Multiple Vulnerabilities
SMB Detection
MailEnable IMAP Server Multiple Buffer Overflow Vulnerabilities (ME-10021)
IBM Access Support ActiveX Control GetXMLValue Method Overflow
Macrovision FLEXnet DWUpdateService ActiveX (agent.exe) Multiple Method Arbitrary Command Execution
VeriSign ConfigChk ActiveX Control (VSCnfChk.dll) Buffer Overflow
Citrix Presentation Server Client Unspecified Remote Code Execution
Kaspersky Labs Anti-Virus IOCTL Local Privilege Escalation
MS06-035: Vulnerability in Server Service Could Allow Remote Code Execution (917159) (uncredentialed check)
Firefox < 2.0.0.7 Apple QuickTime Plug-In .qtl File qtnext Field Cross-context Scripting
Trend Micro ServerProtect Multiple Remote Overflows
MS04-031: Vulnerability NetDDE Could Allow Code Execution (841533) (uncredentialed check)
BFTelnet Username Handling Remote Overflow DoS
Adobe Acrobat < 6.0.6 / 7.0.9 Multiple Vulnerabilities
Adobe Reader getAnnots() JavaScript Method PDF Handling Memory Corruption
RealPlayer Skin File Remote Buffer Overflow
MailEnable < 1.7 IMAP Server Multiple Vulnerabilities (ME-100008)
Camtasia Studio Pre-generated SWF File csPreloader Variable Unspecified Arbitrary Code Execution
MDaemon IMAP Server CREATE Command Mailbox Name Handling Overflow
Van Dyke SecureCRT Remote Command Execution Vulnerability
Husdawg System Requirements Lab Multiple ActiveX Remote Code Execution
WinPcap NPF.SYS Local Privilege Escalation
7-Zip ARJ File Handling Overflow
PFTP clear-text passwords
SMB shares enumeration
Firefox < 2.0.0.12 Multiple Vulnerabilities
Unsupported Windows 95/98/ME Installation
XCP DRM Software Detection
Adobe Reader < 9.1.3 Flash Handling Unspecified Arbitrary Code Execution (APSB09-10)
QuickTime < 7.2 Security Update (Windows)
MDaemon Content Filter Traversal Arbitrary File Write
Winamp < 5.541 NowPlaying Feature Metadata XSS
OpenOffice.org < 2.0.3 Multiple Vulnerabilities
OpenOffice < 2.4.1 rtl_allocateMemory() Function Crafted Document Handling Integer Overflow
Subversion Client/Server Detection (Windows)
Trend Micro OfficeScan OfficeScanSetupINI.dll Remote Buffer Overflow
Safari < 3.2.2
DivX Web Player < 1.4.3.4 Stream Format Chunk Buffer Overflow
RealPlayer for Windows < Build 6.0.14.806 / 6.0.12.1675
SeaMonkey < 1.0.9 / 1.1.2
FlashFXP < 2.1b923 Multiple Remote Overflows
Symantec pcAnywhere CHF File Pathname Format String Denial of Service
Mozilla Thunderbird < 2.0.0.19 Multiple Vulnerabilities
Flash Player Multiple Vulnerabilities (APSB07-20)
RealPlayer for Windows Multiple Vulnerabilities (2)
Google Chrome < 1.0.154.64 Multiple Overflows
PuTTY Multiple Integer Overflow Vulnerablities
Flash Player HTTP Header CRLF Injection (APSB06-18)
Adobe Acrobat < 8.1.1 Crafted PDF File Arbitrary Code Execution
CesarFTP settings.ini Authentication Credential Cleartext Disclosure
Trend Micro Multiple Products Token Prediction Security Bypass
Novell ZENworks ESM Security Client STEngine Privilege Escalation
MS05-039: Vulnerability in Plug and Play Service Could Allow Remote Code Execution (899588) (uncredentialed check)
Sun Java Runtime Environment Privilege Escalation (231261)
Trillian < 3.1.6.0 Multiple Vulnerabilities
Opera < 9.63 Multiple Vulnerabilities
Sun Java J2SE 1.4.2 < Update 18 Multiple Vulnerabilities
QuickTime < 7.4 Multiple Vulnerabilities (Windows)
Broadcom Wireless Driver (BCMWL5.SYS) Probe Response SSID Overflow
Adobe Reader < 8.0 AcroPDF ActiveX Control Multiple Vulnerabilities
Firefox < 3.0.12 Multiple Vulnerabilities
MailEnable POP3 Server APOP Command Remote Buffer Overflow
Macrovision SafeDisc secdrv.sys Crafted METHOD_NEITHER IOCTL Local Overflow
AVG Anti-Virus Crafted UPX File Handling Divide-by-zero Remote DoS
AOL AIM sipXtapi.dll Multiple Buffer Overflow Vulnerabilities
CA License Service Multiple Vulnerabilities
Opera < 9.27 Multiple Vulnerabilities
Total Commander Detection
Opera Detection
Winamp < 5.5 FLAC Plug-in Multiple Buffer Overflows
MailMarshal tar Archive Traversal Arbitrary File Overwrite
Symantec Backup Exec for Windows RPC Crafted ncacn_ip_tcp Request Remote Overflow
Magic Winmail Server PASS Command Remote Format String
SAHAGENT detection
Firefox < 3.0.10 Multiple Vulnerabilities
OpenOffice < 2.3.1 Database HSQLDB Database Document Handling Arbitrary Java Code Execution
Trend Micro VSAPI ARJ Handling Heap Overflow
VLC Media Player < 0.8.6h Multiple Vulnerabilities
DameWare Mini Remote Control Pre-Authentication Remote Overflow
IA eMailServer IMAP SEARCH Command Remote Overflow
ER Mapper NCSView ActiveX Multiple Buffer Overflows
MS07-065: Vulnerability in Message Queuing Could Allow Remote Code Execution (937894) (uncredentialed check)
Altiris Notification Server Agent GUI Local Privilege Escalation (KB 39159)
IBM Tivoli Provisioning Manager for OS Deployment TFTPD Malformed PRQ Request DoS
WinRAR < 3.71 Archive Handling Vulnerabilities
AxisCamControl ActiveX Control Buffer Overflow
MS08-040: Microsoft SQL Server Multiple Privilege Escalation (941203) (uncredentialed check)
Symantec Mail Security for SMTP libdayzero.dll Executable Parsing DoS
Akamai Red Swoosh < 3333 referer Header Cross-Site Request Forgery
Altiris AClient < 6.9.164 Multiple Local Vulnerabilities
Trillian DirectIM Packet Remote Overflow
UltraVNC Viewer < 1.0.5.4 Multiple Integer Overflows
VERITAS NetBackup Volume Manager Daemon Buffer Overflow Vulnerability
Songbird Detection
IRCXPro Clear Text Passwords Local Disclosure
Photo Upload Plugin Buffer Overflow Vulnerabilities
Yahoo! Messenger < 8.1.0.416 Multiple Vulnerabilities
BitDefender PDF Scan Evasion
Firefox < 1.5.0.11 / 2.0.0.3 Multiple Vulnerabilities
WinGate Telnet Proxy localhost Connection Saturation DoS
CA BrightStor ARCserve Backup DBASVR for Windows Multiple Remote Buffer Overflows
Novell NetIdentity Agent < 1.2.4 Arbitrary Pointer De-reference Code Execution
Sun Java Enterprise Server NSS Remote Code Execution Vulnerabilities
Firefox < 3.0.8 Multiple Vulnerabilities
NetSupport NSM / NSS Initial Connection Setup Configuration Exchange Remote Overflow
Citrix Presentation Server Clients Program Neighborhood Agent (PNAgent) Content Redirection Remote DoS
SMB Registry : permissions of keys that can change common paths
CA BrightStor ARCserve Backup Multiple Vulnerabilities (QO92996)
POWER SEARCH detection
ICQ < 6 Build 6059 Message Processing Format String
Winamp < 5.34 Multiple Vulnerabilities
Mozilla Thunderbird < 2.0.0.12 Multiple Vulnerabilities
Sun Java Runtime Environment and Web Start Multiple Vulnerabilities (103072, 103073, 103078, 103079, 103112)
MS06-056: Vulnerabilities in ASP.NET could allow information disclosure (922770) (uncredentialed check)
Learn2 STRunner ActiveX Control Multiple Buffer Overflow Vulnerabilities
Novell exteNd Director LocalExec ActiveX (LocalExec.ocx) launch() Method Arbitrary Command Execution
Citrix Password Manager Service Stored Secondary Credentials Disclosure
Free Community Detection
iTunes < 8.2 itms: URI Handling Overflow (credentialed check)
MERCUR Messaging < 2005 SP4 Multiple Remote DoS Vulnerabilities
Trillian < 3.1.5.1 XMPP Decoding Heap Overflow
OpenOffice RTF Parser prtdata Tag Buffer Overflow
Adobe AIR Detection
Symantec Backup Exec Calendar ActiveX Control Multiple Vulnerabilities (SYM08-007)
Winamp < 5.13 Playlist Handling Multiple Overflows
SMB log in
OpenOffice < 2.4.2 WMF and EMF File Handling Buffer Overflows
FileZilla FTP Client < 2.2.30a Multiple Buffer Overflows
Using NetBIOS to retrieve information from a Windows host
Skype < 1.4.0.84 Multiple Remote Overflows (credentialed check)
Trend Micro Anti Virus Check
MailEnable Webmail Malformed Encoded Quoted-printable Email DoS (CVE-2006-1338)
MS04-042: Windows NT Multiple DHCP Vulnerabilities (885249) (uncredentialed check)
MS09-039: Vulnerabilities in WINS Could Allow Remote Code Execution (969883) (uncredentialed check)
QuickTime < 6.5.1 .mov File sample-to-chunk Table Data Handling Overflow (Windows)
PuTTY SSH2 authentication password persistence weakness
Novell GroupWise Messenger Client < 2.0.3 HP1 Multiple Remote Overflows
Opera Resource Detection
Microsoft Dynamics GP < 10.0 Multiple Vulnerabilities
MS03-043: Buffer Overrun in Messenger Service (828035) (uncredentialed check)
Opera < 7.53 Multiple Vulnerabilities
Kaspersky Anti-Virus Detection
MailEnable IMAP Server SEARCH Command Remote DoS
CA Antivirus Engine Multiple Scan Evasion Flaws
Yahoo! Messenger Webcam ActiveX Buffer Overflow Vulnerabilities
SMB Registry : Classic Logon Screen
RealPlayer Remote Vulnerabilities
RealPlayer PNG deflate heap corruption
HP Data Protector Express Crafted Traffic Remote Memory Disclosure
Wireshark / Ethereal 0.9.2 to 1.0.9 Multiple Vulnerabilities
MS05-051: Vulnerabilities in MSDTC Could Allow Remote Code Execution (902400) (uncredentialed check)
Sophos PureMessage < 3.0.2 Multiple Vulnerabilities
Google Chrome < 1.0.154.65 WebKit SVGList Object Handling Memory Corruption
Microsoft Windows 98 Malformed oshare Packet DoS
OpenOffice < 2.3 TIFF Parser Buffer Overflow Vulnerabilities
VERITAS Backup Exec Agent Browser Remote Buffer Overflow Vulnerability
Sophos Anti-Virus For Windows CAB File Scan Evasion Vulnerability
Netscape Browser < 8.0.4 Multiple Vulnerabilities
Google Chrome < 1.0.154.46 Multiple Vulnerabilities
SmartFTP Overflow
rfpoison
Mozilla Thunderbird < 2.0.0.23 Certificate Authority (CA) Common Name Null Byte Handling SSL MiTM Weakness
Nessus Windows < 3.0.6 GUI Unspecified XSS
SMB NativeLanMan
Adobe Reader < 6.0.6 / 7.0.9 Multiple Vulnerabilities
OpenOffice Detection
SeaMonkey < 1.1.12
SMB Registry : Windows Vista / Server 2008 SP2
Opera < 9.26 Multiple Vulnerabilities
FLEXnet Connect Update Service ActiveX Control Multiple Code Execution Vulnerabilities
Google Chrome < 1.0.154.59 ChromeHTML URI Handling Privilege Escalation
Winamp < 5.52 Ultravox Streaming Metadata in_mp3.dll Multiple Tag Overflow
SMB Registry : Do not show the last user name
VLC Media Player < 0.8.6i WAV File Handling Integer Overflow
QuickTime < 7.4.5 Multiple Vulnerabilities (Windows)
QuickTime < 7.0.4 Multiple Vulnerabilities (Windows)
NOD32 Long Path Name Stack Overflow Vulnerabilities
Groove Virtual Office / Workspace Multiple Vulnerabilities
Wireshark / Ethereal 0.9.6 to 1.2.1 Multiple Vulnerabilities
Firefox < 2.0.0.19 / 3.0.5 Multiple Vulnerabilities
Opera < 8.01 Multiple Vulnerabilities
Citrix Password Manager Agent Secondary Credentials Information Disclosure
Microsoft Windows shlwapi.dll Malformed HTML Tag Handling Null Pointer DoS
DjVu Browser Plug-in < 6.1.1 Multiple Buffer Overflows
HP ProCurve Manager Remote Unauthorized Access to Data (HPSBMA02420 SSRT071458)
Possible Compromise through a vulnerability in RPC
VLC Media Player < 0.9.3 XSPF Playlist Handling Memory Corruption
Symantec Scan Engine Detection
FlipViewer ActiveX Control < 4.1 Buffer Overflow Vulnerabilities
EDraw Office Viewer ActiveX (officeviewer.ocx) HttpDownloadFileToTempDir Method Overflow
Foxit Reader < 3.0 Build 1506 / 2.3 Build 3902 Multiple Flaws
DESlock+ < 3.2.7 Multiple Local Vulnerabilities
MailEnable POP Server PASS Command Remote Overflow (ME-10026)
Adobe Reader < 9.1.2 / 8.1.6 / 7.1.3 Multiple Vulnerabilities
CuteFTP < 5.0.2.0 Multiple Vulnerabilities
Dragon Telnet Server Login Name Handling Remote Overflow DoS
DynaZip < 5.0.0.8 / 6.0.0.5 Zip Archive Handling Multiple Overflows
MS09-004: Vulnerability in Microsoft SQL Server Could Allow Remote Code Execution (959420) (uncredentialed check)
ICQ < 2003b Multiple Vulnerabilities
RoboHelp Server Multiple Cross-Site Scripting Vulnerabilities (APSB09-02 Update 2)
AOL Instant Messenger (AIM) Software Detection (credentialed check)
Symantec Mail Security For SMTP Installed
Safari < 3.1.1 Multiple Vulnerabilities
Symantec Backup Exec Multiple Heap Overflow Vulnerabilities
CA Host-Based Intrusion Prevention System Server Log Data XSS
Google Chrome < 1.0.154.53 Multiple Vulnerabilities
LeapFTP < 2.7.4.x PASV Reply Remote Overflow
CommuniGate Pro POP Service Empty Inbox Remote DoS
Opera < 9.60 Multiple Vulnerabilities
SMB Share Hosting Copyrighted Material
Google Chrome < 0.2.149.29 Multiple Vulnerabilities
GATOR Detection
Symantec Mail Security for SMTP < 5.0.1 Patch 200 Unspecified DoS
The alerter service is running
RADIATE detection
Potentially unwanted software
CA HIPS 'xfw.sys Driver Multiple Remote Vulnerabilities
MDaemon POP Server User Name Overflow DoS
Mozilla Thunderbird < 1.0.6 Multiple Vulnerabilities
iTunes < 9.0.1 PLS File Buffer Overflow (credentialed check)
SeaMonkey < 1.1.8
CA Host-Based Intrusion Prevention System Client 'xIds.sys Denial of Service (CA20090818)
VMware Workstation < 5.5.5 and Server < 1.0.4 Multiple Vulnerabilities
Firefox < 1.0.0 Multiple Vulnerabilities
Adobe AIR < 1.5 Multiple Vulnerabilities (APSB08-23)
3CTftpSvc Long Transport Mode Remote Overflow
QuickTime < 7.4.1 RTSP Response Long Reason-Phrase Arbitrary Remote Code Execution (Windows)
Sun Java Applet Invocation Version Specification
MS04-011: Security Update for Microsoft Windows (835732) (uncredentialed check)
RealPlayer Multiple Remote Overflows
Acer AcerCtrls.APlunch ActiveX Arbitrary Command Execution
Panda Antivirus TAR / CAB Scan Evasion
Possible GDI+ compromise
Total Commander FTP Client Traversal Arbitrary File Overwrite






Les derniers commentaires publiés sur SecuObs (6-25):
- ESRT @iagox86 @hdmoore - Using Metasploit to Locate and Exploit the Energizer
- ESRT @innismir - New Weblog Post -- Finding Malware on your network via cache
- Sniffing with Wireshark as a Non-Root User
- Focus on MacNikto v1.1.1
- New Google Chrome v4.1.249.1036 released, fixes multiple security vulnerabili
- ESRT @opexxx @synopsi - Remote stack overflows
- ESRT @postmodern_mod3 @tmm1 - memprof now displays stack frames and threads
- ESRT @_MDL_ @gollmann - Locking botnet agents to specific victim systems in o
- CsFire 0.4.1 autonomously protects against dangerous or malicious cross-domai
- Seccubus v1.4.1 - Nessus 4.2 compatibility release
- ESRT @JGamblin @threatpost - Hackers say they will definitely break into an A
- ESRT @hdmoore @iagox86 - Weaponizing dnscat - first version of dnscat shellco
- iWep PRO 1.1.3 Released
- FireCAT v1.6.2 updated with Framework Detector
- ESRT @opexxx - FireCAT v1.6.2 updated with BackendInfo
- sipwitch 0.7.4
- Oracle XDB FTP service UNLOCK buffer overflow exploit that spawns a reverse s
- XSSploit XSS scanner multiplatfom v0.5 available
- Network forensics in IRB xtractr Ruby gem
- GreenPois0n Possible Jailbreak Software for iPad OS 32


SecuToolBox :

Mini-Tagwall des articles publiés sur SecuObs :

Archives Failles Secunia :
- SA38989 Fedora update for tar
- SA38988 Fedora update for cpio
- SA38921 SUSE update for OpenOffice_org
- SA38971 Multi Auktions Komplett System id_auk SQL Injection Vulnerability
- SA38945 Ubuntu update for audiofile

Archives Mailing Full Disclosure :
- Full-disclosure Claude Mercier/CLSC-CHSLD BVLV/Reg03/SSSS est absent(e).
- Re: Full-disclosure Fingerprinting Paper with Laser
- Full-disclosure Vulnerability Httpdx v1.5.3b
- Full-disclosure CA20100318-01: Security Notice for CA ARCserve Backup
- Re: Full-disclosure Fingerprinting Paper with Laser

Archives Mailing Bugtraq :
- announcing skipfish, an automated web app security scanner
- Vulnerability Httpdx v1.5.3b
- IBM Lotus 6.x HTTP Response Splitting Vulnerability
- There are lost of xss vul in PHPWind v6.0 !
- CA20100318-01: Security Notice for CA ARCserve Backup
- SECURITY DSA-2018-1 New php5 packages fix null pointer dereference

Mini-Tagwall de l'annuaire video :

Mini-Tagwall des articles de la revue de presse :

Mini-Tagwall des Tweets de la revue Twitter :